Reg Harnish is an entrepreneur, speaker, security specialist and the Founder of GreyCastle Security.

With over 10 years of extensive experience in security solutions for Financial Services, Healthcare and Higher Education organizations, Reg focuses on implementations of ISO and NIST standards ranging from risk management, incident handling and regulatory compliance to network, application and physical security. Always bringing a unique perspective to information and physical security, Reg works to promote awareness, establish security fundamentals and reduce risk for all clients.

As GreyCastle Security’s Founder and Chief Security Strategist, Reg helps businesses of all types identify their risks, implement practical solutions and avoid the hype and hysteria that is commonplace in security today. By combining decades of experience, military-grade standards and security fundamentals, Reg continues to demonstrate that all businesses can reduce their risk.

Reg attended Rensselaer Polytechnic Institute in Troy, NY, and has achieved numerous security and industry certifications. Reg is a Certified Information Systems Security Professional (CISSP), and a Certified Information Security Manager (CISM). In addition, Reg is certified in Information Technology Infrastructure Library (ITIL) Service Essentials, as well as ITIL Lean for Service. Reg is a member of the InfraGard National Members Alliance, the Information Systems Audit and Control Association (ISACA), and the Information Systems Security Association (ISSA). In addition to deep expertise in information security, Reg has achieved numerous physical security certifications, including firearms instruction, range safety and personal protection.

Reg is a frequent speaker and has presented at prominent events, including the NYS Cyber Security Conference, The New York Bankers Association (NYBA) and Symantec Vision, the company’s global conference. Reg's successes have been featured in several leading industry journals, including Software Magazine, ComputerWorld and InfoWorld.

Reg serves as the Vice President of Education for the Hudson Valley Chapter of ISACA. He also serves on the Advisory Board for ITT Technical Institute, a secondary education institution focused on business technology. Reg was also previously a member of the Board of Directors for the Red Cross of Northeastern New York.

Prior to GreyCastle Security, Reg held technology positions spanning the past 20 years, ranging from established Fortune 500 firms to technology startups. Reg’s business background comes from experience in several verticals, including supply chain, financial services, managed services and most recently public utilities. As the Chief Technology Officer for several organizations, Reg was responsible for defining and developing Internet strategies, developing technology solutions, participating in venture capital financing and developing business strategy. Reg has also served as a technology advisory consultant to several venture capital firms.

###

About GreyCastle Security

The first and only solutions provider in Tech Valley focused exclusively on information security. We provide practical solutions to today's threats using military-grade standards and time-hardened fundamentals. We bring light to the real risks you're facing so you can spend your next security dollar wisely.

GreyCastle Security was founded on the core principle that internal and external threats, misuse, organized cybercrime, system complexity, data breaches, hackers and vulnerabilities are growing at a far faster rate than organizations capable of dealing with them.

GreyCastle Security is unlike other security providers. We don’t sell firewalls. We don’t sell antivirus software. In short, we recognize that securing your business takes a different set of skills and a different approach than it did 5 years ago.
Our program is based on 5 basic principles:

The way you protect your business and assets should be based on your risks - not fear, hype, hysteria or tradition

People can be your greatest weakness or your greatest strength - your people want to be good security citizens, they just need your help

Security is about defense in depth in people, processes and technology - miss any one of those and you're more likely to be the next headline

Security may be a cost center, but you can spend less money and be more secure and more compliant

In today's world, you can assume that you've already been compromised - how you respond to data breaches and security incidents can mean the difference between effective recovery and complete disaster.